Tag: cyber threat intelligence
14 articles

AI-Generated Malware Targets Active Directory Environments
Criminals are now leveraging AI to create malicious software, as seen in a recent case where an attacker used an AI-assisted PowerShell script to infiltrate an Active Directory environment. This emerging threat, dubbed "vibe coding," allows attackers to generate software by simply prompting a large language model in plain language.

Malicious AI Agents Infiltrate Open Source Repositories
A recent ESET study uncovered a staggering number of malicious AI agents hiding in plain sight within open-source repositories, with tens of thousands of suspicious instances and thousands more flagged as outright malicious. This alarming trend suggests a rapidly escalating threat landscape, with cyber attackers leveraging AI to plan, execute, and scale their attacks.

Criminal IP Enhances OpenCTI with Contextual Threat Intelligence Integration
Unlock the full potential of your threat intelligence with Criminal IP's integration with OpenCTI, providing rich contextual insights to supercharge investigation, correlation, and decision-making. By adding dual-perspective risk scoring, analysts gain a more nuanced view of IP risks, with separate signals for inbound and outbound threats.

Vulnerability Management Faces AI-Driven Time Crunch
The time it takes for hackers to exploit a newly discovered vulnerability has dramatically shrunk from 53 days to just 8 hours, thanks to AI-driven automation that accelerates the process of finding and weaponizing weaknesses. This alarming trend makes it increasingly challenging for organizations to keep pace with patching and remediation efforts.

Five Eyes Agencies Warn of AI-Driven Cyber Threat Surge
The Five Eyes cybersecurity agencies are sounding the alarm: AI-driven cyber threats are no longer a future threat, but a present danger that businesses and governments must tackle urgently. Frontier AI will revolutionize the threat landscape in months, not years, and malicious actors are already seizing the advantage.

INTERPOL Warns of Rising Cybercrime in Asia-Pacific
Cybercriminals are wreaking havoc in Asia-Pacific, using cutting-edge tactics like AI and ransomware to scam and steal on a massive scale. Phishing is the region's most costly and widespread crime, with a third of countries reporting over 10,000 cases in just 15 months.

UK Banks Gain Access to OpenAI's GPT-5.5 Cyber Model
UK banks are now part of an exclusive group gaining early access to OpenAI's cutting-edge GPT-5.5 Cyber model, a powerful AI tool designed to bolster their defenses against sophisticated cyber threats. This move comes as Anthropic's rival program, Project Glasswing, expands to 200 partners, leaving some UK banks to tap into OpenAI's innovative solution instead.

World Cup Scams Target Security Leaders with AI-Driven Threats
As the 2026 World Cup approaches, security leaders are on high alert for AI-driven scams that could compromise corporate devices and accounts, especially when employees use them for personal activities like hunting for tickets or booking travel. Even personal emails can become a threat vector, making effective cybersecurity planning more crucial than ever.

Vulnerabilities Dwindle to Manageable Number in Supply Chain Risk Landscape
The good news on supply chain risk: out of 1,200 high-priority vulnerabilities in 2025, only 58 proved both highly exposed and easily exploitable, making them a manageable threat. By focusing on these urgent few, organizations can tackle their most immediate and impactful risks.

Hackers Exploit Human Behavior to Bypass Security Tools
As cyber threats evolve at an alarming rate, hackers are exploiting human behavior to outsmart security tools, forcing organizations to rethink their defensive strategies. With identity abuse and data extortion on the rise, businesses must stay ahead of the game to protect themselves.

SecurityScorecard Bolsters Internet Visibility with Driftnet Acquisition
SecurityScorecard has acquired Driftnet, an internet scanning startup, to supercharge its third-party risk management capabilities with deeper, real-time visibility into internet infrastructure and hidden exposures. This strategic move allows SecurityScorecard to directly control data quality and drive future innovation in AI security.

US Cyber Officials Tighten Patching Deadlines Amid AI-Driven Threats
US cyber officials are considering a drastic reduction in patching deadlines, from two weeks to just three days, as AI-driven threats rapidly escalate and attackers gain unprecedented speed in discovering and exploiting vulnerabilities. This proposed shift reflects a urgent response to the evolving threat landscape, where AI-powered tools are revolutionizing the speed and efficiency of cyber attacks.

Cybercriminals Explore AI's Dark Potential
Cybercriminals are increasingly exploring the dark side of artificial intelligence, and a recent study offers a glimpse into their private conversations, revealing a mix of curiosity, experimentation, and concern. By analyzing over 160 cybercrime forum discussions, researchers shed light on how offenders perceive and discuss AI's potential for cybercrime.

Iranian Campaign Targets 3,900 Devices in US Infrastructure
A recent Iranian cyber campaign has set its sights on a staggering 3,900 exposed devices in US infrastructure, putting energy, water, and government services at risk. This large-scale threat is a clear warning sign that these critical systems may be vulnerable to attack.